Tiger Unix Security tool updated to 3.2.3
TIGER is a set of Bourne shell scripts, C programs, and data files which are used to perform a security audit of Unix systems. The security audit results are useful both for system analysis (security auditing) and for real-time, host-based intrusion detection.
A new version of Tiger (3.2.3) has been released. This version is mainly a bug fix release that incorporates all the fixes introduced in Debian since the 3.2.2 release.
Changes for this new release
- SECURITY FIX: Fix a temporary race condition in the genmsgidx script (only
affects those that build the code in untrusted systems)
- Added support for more local and non-local filesystems in Linux gen_mounts:
reiser4, securityfs, fuse.gvfs-fuse-daemon, fuseblk, fuse.truecrypt,
fuse.encfs, debugfs, afs, configfs, gfs, gfs2, inotifyfs, hugetlb, subfs,
futexfs and bind.
- Added a new configuration variable in tigerrc
- Add new variables in tigerrc
- Fix the main Makefile so that the code gets compiled when running ’make all’
- Add a new Makefile to the doc/ subdirectory so that the contents get built and removed and no autogenerated content is distributed. This subdirectory is called from the mainMakefile.
- Use tempfile if available in the configuration step, although we work in WORKDIR and we are safe there
- Make tigercron POSIX compliant so it works in any shell, not just bash
- The ’gen_cron’ script for Linux now handles properly the case when the special @daily,@reboot, etc. definitions are used instead of real times.
- Scripts changes
Post scriptum
Related Articles
Configurations checks |
|
Local auditing |
|
Tiger |
|